This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3230352e302f32342d3234203d3e203633303233.roa File: 3134372e3132352e3230352e302f32342d3234203d3e203633303233.roa (raw, json) Hash identifier: C83qJF/K6BhhJ9sSAeeeja9BUgSxThLnypl0TEKmjyI= Subject key identifier: 0C:C3:F5:17:14:AB:18:B6:04:49:59:0C:73:EF:F1:C7:6C:55:5B:7A Certificate issuer: /CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Certificate serial: 1E4CD2123592F3FF39C184FACD9983E3470A52CB Authority key identifier: 6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3230352e302f32342d3234203d3e203633303233.roa Signing time: Tue 09 Dec 2025 08:51:53 +0000 ROA not before: Tue 09 Dec 2025 08:46:53 +0000 ROA not after: Tue 08 Dec 2026 08:51:53 +0000 asID: 63023 IP address blocks: 147.125.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.mft rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:4c:d2:12:35:92:f3:ff:39:c1:84:fa:cd:99:83:e3:47:0a:52:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ccdc82bae7800f7d507c737924869bdeb5a76ea Validity Not Before: Dec 9 08:46:53 2025 GMT Not After : Dec 8 08:51:53 2026 GMT Subject: CN=0CC3F51714AB18B60449590C73EFF1C76C555B7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0d:8a:88:9a:ad:e7:e4:09:35:8b:88:74:1e: 06:10:b5:73:f6:59:66:b1:27:fe:eb:9c:89:16:14: 55:d6:19:7f:9c:8a:e3:fa:86:a9:b3:7a:bc:ce:49: e1:d8:db:af:39:7a:09:04:df:72:b6:74:4c:81:26: 5d:bc:12:29:69:4c:f8:8f:73:15:9b:71:8f:52:03: 39:74:6c:f5:22:da:eb:03:03:b7:86:7b:7b:4c:24: 53:a5:5d:f6:ff:ea:6f:c9:05:20:ef:41:df:3a:19: 98:4e:0c:65:63:73:d8:f8:7c:d7:a2:64:d7:be:15: 07:c8:71:b1:be:14:0c:25:c7:55:fd:01:70:16:e3: c1:36:8b:93:17:ec:fc:14:d7:62:a2:fb:be:15:2e: f6:1a:16:a1:cf:44:49:ea:7f:2c:ae:cd:43:27:b3: b1:4d:84:3d:d1:72:b9:7c:2a:7c:ea:a9:f7:b4:a6: a4:6c:42:f6:8a:41:d8:c7:29:e6:c6:48:ae:1d:37: 06:cb:84:76:3b:b7:f2:6e:c3:58:e2:f7:02:5f:aa: 1f:8c:90:71:24:0d:b4:fb:49:d7:14:83:8e:ba:9e: d7:04:2d:5a:63:28:20:49:2a:0b:c5:4c:fa:bb:52: ec:68:b0:95:25:34:e3:11:d7:66:10:14:fa:95:00: 69:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C3:F5:17:14:AB:18:B6:04:49:59:0C:73:EF:F1:C7:6C:55:5B:7A X509v3 Authority Key Identifier: keyid:6C:CD:C8:2B:AE:78:00:F7:D5:07:C7:37:92:48:69:BD:EB:5A:76:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/6CCDC82BAE7800F7D507C737924869BDEB5A76EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bM3IK654APfVB8c3kkhpvetaduo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ccd3884a-c385-4b65-9866-4f6383172672/0/3134372e3132352e3230352e302f32342d3234203d3e203633303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.125.205.0/24 Signature Algorithm: sha256WithRSAEncryption 53:48:33:82:d3:6a:ab:25:d3:54:c4:69:47:bc:53:f7:73:58: 56:29:70:aa:19:1d:02:3d:a6:e9:63:f0:4a:48:d0:46:12:d3: 57:d8:22:8b:86:39:8d:6e:b2:61:1c:c3:13:79:2f:0d:33:52: b3:1e:89:bf:8a:bd:65:f1:c1:8d:8c:6f:b2:b8:0e:d8:6a:e6: 61:ad:3a:a5:ed:9b:e6:26:37:cf:19:01:66:e7:4b:9c:7e:fa: 17:d1:ac:52:12:e8:6b:e2:e1:13:68:ae:c4:86:66:3c:3a:50: 82:21:72:c4:f3:b5:67:1c:91:b1:f6:61:91:87:8f:81:9c:28: 05:54:69:3b:87:4b:7b:c7:dc:c1:67:26:03:d8:d8:1d:21:f9: f0:25:83:bc:51:01:36:0e:7b:f9:3a:4c:a4:39:81:33:1d:61: 47:2d:6a:48:e4:83:c9:ec:12:d0:bf:c5:1b:d2:2e:35:38:33: 63:99:ea:36:84:93:b9:7d:bf:1f:79:3f:b2:ac:eb:fa:3e:6e: 59:df:33:c9:da:a0:5d:8d:27:96:be:e6:b5:63:88:66:44:fb: 8d:cd:6c:1e:3d:57:be:13:0a:6d:2a:c3:c2:ad:12:50:b2:d3: 0e:7c:db:8d:3a:c9:23:5b:5f:98:c5:6b:e1:d5:73:57:6c:7f: a9:63:0d:c7 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUHkzSEjWS8/85wYT6zZmD40cKUsswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNmNjZGM4MmJhZTc4MDBmN2Q1MDdjNzM3OTI0ODY5YmRl YjVhNzZlYTAeFw0yNTEyMDkwODQ2NTNaFw0yNjEyMDgwODUxNTNaMDMxMTAvBgNV BAMTKDBDQzNGNTE3MTRBQjE4QjYwNDQ5NTkwQzczRUZGMUM3NkM1NTVCN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+DYqImq3n5Ak1i4h0HgYQtXP2 WWaxJ/7rnIkWFFXWGX+ciuP6hqmzerzOSeHY2685egkE33K2dEyBJl28EilpTPiP cxWbcY9SAzl0bPUi2usDA7eGe3tMJFOlXfb/6m/JBSDvQd86GZhODGVjc9j4fNei ZNe+FQfIcbG+FAwlx1X9AXAW48E2i5MX7PwU12Ki+74VLvYaFqHPREnqfyyuzUMn s7FNhD3Rcrl8Knzqqfe0pqRsQvaKQdjHKebGSK4dNwbLhHY7t/Juw1ji9wJfqh+M kHEkDbT7SdcUg466ntcELVpjKCBJKgvFTPq7UuxosJUlNOMR12YQFPqVAGmFAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUDMP1FxSrGLYESVkMc+/xx2xVW3owHwYDVR0j BBgwFoAUbM3IK654APfVB8c3kkhpvetaduowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEtYzM4NS00YjY1LTk4NjYtNGY2MzgzMTcy NjcyLzAvNkNDREM4MkJBRTc4MDBGN0Q1MDdDNzM3OTI0ODY5QkRFQjVBNzZFQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JNM0lLNjU0QVBmVkI4YzNra2hwdmV0 YWR1by5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvY2NkMzg4NGEt YzM4NS00YjY1LTk4NjYtNGY2MzgzMTcyNjcyLzAvMzEzNDM3MmUzMTMyMzUyZTMy MzAzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzMzMDMyMzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACTfc0wDQYJKoZIhvcNAQELBQADggEBAFNIM4LTaqsl01TEaUe8U/dzWFYpcKoZ HQI9pulj8EpI0EYS01fYIouGOY1usmEcwxN5Lw0zUrMeib+KvWXxwY2Mb7K4Dthq 5mGtOqXtm+YmN88ZAWbnS5x++hfRrFIS6Gvi4RNorsSGZjw6UIIhcsTztWcckbH2 YZGHj4GcKAVUaTuHS3vH3MFnJgPY2B0h+fAlg7xRATYOe/k6TKQ5gTMdYUctakjk g8nsEtC/xRvSLjU4M2OZ6jaEk7l9vx95P7Ks6/o+blnfM8naoF2NJ5a+5rVjiGZE +43NbB49V74TCm0qw8KtElCy0w582406ySNbX5jFa+HVc1dsf6ljDcc= -----END CERTIFICATE-----Generated at Tue Dec 16 23:50:01 2025 by rpki-client